azure-policy icon indicating copy to clipboard operation
azure-policy copied to clipboard
verified publisher icon Azure

BuiltIn Policy for virtual network flow log missing constraints

Open picccard opened this issue 4 months ago • 0 comments

BuiltIn Policy DisplayName: Configure virtual network to enable Flow Log and Traffic Analytics Policy Id: 3e9965dc-cc13-47ca-8259-a4252fd0cf7b

This issue is both in the azure policy and in the resource providers API.

The parameter retentionDays has no constraints. However setting the value to 400 results in an error in the portal. The resource provider does not have any constraints either, they allow any integer value.

Image

The parameter should be limited to any int between 0 and 365, if that is what the resource allows.

"parameters": {
  "retentionDays": {
    "type": "integrer",
    "schema": {
      "minimum": 0,
      "maximum": 365
    }    
  }

picccard avatar Oct 15 '25 14:10 picccard